With the increasing reliance on mobile devices in the workplace, organizations must choose the right strategy to manage and secure corporate data. Microsoft offers two primary options: Mobile Application Management (MAM) and Mobile Device Management (MDM). Understanding the differences between these approaches is essential for balancing security, user experience, and administrative effort. This article provides…
Tag: Conditional Access
Azure AD Conditional Access authentication context now also available for Azure AD Privileged Identity Management
Microsoft has extended the capabilities of Azure AD authentication context to Azure AD Privileged Identity Management (PIM). By doing this we can trigger a Conditional Access policy to be executed at the moment someone elevates their role using Azure AD PIM. This functionality is now in preview. In June 2021 I already provided a first…
Conditional Access public preview functionality reviewed (22H2) – Part 3: Granular control for external user types
In the last couple of months, Microsoft released new functionality for Azure AD Conditional Access. All of this functionality is still in public preview, so please read the following article on what to expect from Preview functionality: Preview Terms Of Use | Microsoft Azure In these series of articles I will go through the following…
Conditional Access public preview functionality reviewed (22H2) – Part 2: Conditional Access filters for Apps and Workload Identities
In the last couple of months, Microsoft released new functionality for Azure AD Conditional Access. All of this functionality is still in public preview, so please read the following article on what to expect from Preview functionality: Preview Terms Of Use | Microsoft Azure In these series of articles I will go through the following…
Limit Access to Outlook Web Access, SharePoint Online and OneDrive using Conditional Access App Enforced Restrictions
One of the scenario’s we can build with Conditional Access, is the scenario where we restrict access inside the web application itself. By doing so, you could for example limit the functionality of the web applications on non-managed devices, or when accessing the web application from a country where your company normally doesn’t operate. The…
Azure AD Identity Protection deep dive
One of the advantages of Microsoft having many customers using its services is that Microsoft can leverage data from those customers and apply some real fancy Machine Learning on that data, coming from Azure AD, Microsoft Accounts and even Xbox services. Based on all that data the Machine Learning capabilities are able to identify identity…
Microsoft deprecates Conditional Access baseline policies in favour of Security Defaults, here is what you need to know and do
Last week, Microsoft announced that the Azure AD conditional access baseline policies will not make it out of their current preview status. The functionality of the baseline policies will be made in available in a new feature called “Security Defaults”, Microsoft will remove the baseline policies on February 29th, so if you are using them…
Report-only mode, and some more handy reporting functionality for Conditional Access and Azure AD
During its annual Microsoft Ignite 2019 conference this week, Microsoft announced a new feature for Conditional Access called Report-Only mode in preview. So, what is Report-only mode? Report-Only mode is a new option within a Conditional Access policy. Besides the option to turn the conditional access policy on or off, the option to Report-only has…
Extending Conditional Access to Microsoft Cloud App Security using Conditional Access App Control
In my blog article series on Conditional Access Demystied I mentioned that Conditional Access can be used to route sessions toward Microsoft Cloud App Security (MCAS). In this article I will go into more detail on what MCAS is, and how to setup Conditional Access App Control. Disclaimer: This article discusses the full option MCAS…
Conditional Access demystified, part 8: Resources and further references
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is the last part of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does…
Conditional Access demystified, part 7: Modifying Conditional Access to suit your special needs
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 7 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 6: Troubleshooting Conditional Access
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 6 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 5: Implementing Conditional Access
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 5 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 4: Designing a Conditional Access strategy
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 4 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 3: How does Conditional Access work?
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 3 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 4: Designing a Conditional…